From: guido@trentalancia.com (Guido Trentalancia)
Date: Fri, 06 Oct 2017 21:00:41 +0200
Subject: [refpolicy] [PATCH 2/2] dbus: read user home content files
Message-ID: <1507316441.20230.11.camel@trentalancia.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

Add permissions required to run Gnome (read user color management
files).

Signed-off-by: Guido Trentalancia <guido@trentalancia.com>
---
 policy/modules/contrib/dbus.te |    2 ++
 1 file changed, 2 insertions(+)

--- a/policy/modules/contrib/dbus.te	2017-09-29 19:01:55.142455647 +0200
+++ b/policy/modules/contrib/dbus.te	2017-10-06 00:04:54.272534259 +0200
@@ -147,6 +147,8 @@ seutil_read_default_contexts(system_dbus
 userdom_dontaudit_use_unpriv_user_fds(system_dbusd_t)
 userdom_dontaudit_search_user_home_dirs(system_dbusd_t)
 
+userdom_read_user_home_content_files(system_dbusd_t)
+
 ifdef(`init_systemd', `
 	# gdm3 causes system_dbusd_t to want this access
 	dev_rw_dri(system_dbusd_t)